Lucene search
Veracode Vulnerability DatabaseVERACODE:31887HistorySep 01, 2021 - 2:31 a.m.
Denial Of Service (DoS)
2021-09-0102:31:46
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
neutron
vulnerability
denial of service
authenticated users
malicious
extra_dhcp_opts
crash
alter
behavior
EPSS
0.001
Percentile
44.8%
neutron is vulnerable to denial of service. An authenticated user may send a malicious extra_dhcp_opts value to add arbitrary configuration to the dnsmasq process in order to crash the service, change parameters for other tenants sharing the same interface, or otherwise alter that daemons behavior.
References
www.openwall.com/lists/oss-security/2021/08/31/2
bugs.launchpad.net/neutron/+bug/1939733
launchpad.net/bugs/1939733
lists.debian.org/debian-lts-announce/2021/10/msg00005.html
lists.debian.org/debian-lts-announce/2022/05/msg00038.html
security.openstack.org/ossa/OSSA-2021-005.html
www.debian.org/security/2021/dsa-4983
Related
redhat
redhat
osv
osv
PYSEC-2021-361
2021-08-31 18:15:00
CVE-2021-40085
2021-08-31 18:15:08
debian
debian
[SECURITY] [DLA 2781-1] neutron security update
2021-10-11 14:33:02
[SECURITY] [DLA 3027-1] neutron security update
2022-05-26 14:33:07
[SECURITY] [DSA 4983-1] neutron security update
2021-10-10 18:06:29
openvas
openvas
Debian: Security Advisory (DLA-2781-1)
2021-10-12 00:00:00
Debian: Security Advisory (DLA-3027-1)
2022-06-01 00:00:00
Debian: Security Advisory (DSA-4983-1)
2021-10-12 00:00:00
cvelist
cvelist
CVE-2021-40085
2021-08-31 17:32:24
cve
cve
CVE-2021-40085
2021-08-31 18:15:08
nvd
nvd
CVE-2021-40085
2021-08-31 18:15:08
nessus
nessus
Debian DLA-2781-1 : neutron - LTS security update
2021-10-11 00:00:00
prion
prion
Design/Logic Flaw
2021-08-31 18:15:00
debiancve
debiancve
CVE-2021-40085
2021-08-31 18:15:08
redhatcve
redhatcve
CVE-2021-40085
2021-08-31 19:04:40
ubuntucve
ubuntucve
CVE-2021-40085
2021-08-31 00:00:00
github
github
ubuntu
ubuntu
OpenStack Neutron vulnerabilities
2023-05-10 00:00:00